diff options
Diffstat (limited to 'www/analyzer/release_notes.html')
-rw-r--r-- | www/analyzer/release_notes.html | 88 |
1 files changed, 76 insertions, 12 deletions
diff --git a/www/analyzer/release_notes.html b/www/analyzer/release_notes.html index 311c5aecd5c8c..42de9ddae27fb 100644 --- a/www/analyzer/release_notes.html +++ b/www/analyzer/release_notes.html @@ -3,8 +3,8 @@ <html> <head> <title>Release notes for checker-XXX builds</title> - <link type="text/css" rel="stylesheet" href="menu.css" /> - <link type="text/css" rel="stylesheet" href="content.css" /> + <link type="text/css" rel="stylesheet" href="menu.css"> + <link type="text/css" rel="stylesheet" href="content.css"> <script type="text/javascript" src="scripts/menu.js"></script> </head> <body> @@ -15,10 +15,78 @@ <h1>Release notes for <tt>checker-XXX</tt> builds</h1> +<h4 id="checker_263">checker-263</h4> + +<p><b>built:</b> March 22, 2012</br> + <b>download:</b> <a href="http://bit.ly/GUmtVB">checker-263.tar.bz2</a></p> +<p><b>highlights:</b></p> + +<ul> +<li>Fixes several serious bugs with inter-procedural analysis, including a case where retain/releases would be "double-counted".</li> +</ul> + +<h4 id="checker_262">checker-262</h4> + +<p><b>built: </b>March 15, 2012</br> + <b>download:</b> <a href="http://bit.ly/xETQF0">checker-262.tar.bz2</a></p> +<p><b>highlights:</b></p> + +<ul> + <li>Enables experimental interprocedural analysis (within a file), which greatly amplifies the analyzer's ability to find issues.</li> + <li>Many bug fixes to the malloc/free checker.</li> + <li>Support for new Objective-C NSArray/NSDictionary/NSNumber literals syntax, and Objective-C container subscripting.</li> +</ul> + +<p>NOTE: This build contains new interprocedural analysis that allows the analyzer to find more complicated bugs that span function boundaries. It may have problems, performance issues, etc. We'd like to <a href="/filing_bugs.html">hear about them</a>. + +<h4 id="checker_261">checker-261</h4> + +<p><b>built: </b>February 22, 2012<br> +<b>download:</b> <a href="http://bit.ly/yN1Awv">checker-261.tar.bz2</a></p> +<p><b>highlights:</b></p> + +<ul> + <li>Contains a new experimental malloc/free checker.</li> + <li>Better support for projects using ARC.</li> + <li>Warns about null pointers passed as arguments to C string functions.</li> + <li>Warns about common anti-patterns in 'strncat' size argument, which can lead to buffer overflows.</li> + <li>set-xcode-analyzer now supports self-contained Xcode.app (Xcode 4.3 and later).</li> + <li>Contains a newer version of the analyzer than Xcode 4.3.</li> + <li>Misc. bug fixes and performance work.</li> +</ul> + +<h4 id="checker_260">checker-260</h4> + +<p><b>built: </b>January 25, 2012<br> +<b>download:</b> <a href="http://bit.ly/wpAqVP">checker-260.tar.bz2</a></p> +<p><b>highlights:</b></p> + +<p>This is essentially the same as checker-259, but enables the following <i>experimental</i> checkers (please provide feedback):</p> + +<ul> + <li>Warns about unsafe uses of CFArrayCreate, CFSetCreate, and CFDictionaryCreate</li> + <li>Warns about unsafe uses of getpw, gets, which are sources of buffer overflows</li> + <li>Warns about unsafe uses of mktemp and mktemps, which can lead to insecure temporary files</li> + <li>Warns about unsafe uses of vfork, which is <a href="https://www.securecoding.cert.org/confluence/display/seccode/POS33-C.+Do+not+use+vfork()">insecure</a> to use</li> + <li>Warns about not checking the return values of setuid, setgid, seteuid, setegid, setreuid, setregid (another security issue)</li> +</ul> + +<h4 id="checker_259">checker-259</h4> + +<p><b>built: </b>January 25, 2012<br> +<b>download:</b> <a href="http://bit.ly/zOWf1P">checker-259.tar.bz2</a></p> +<p><b>highlights:</b></p> + +<ul> + <li>Contains a newer version of the analyzer than the one shipped in Xcode 4.2.</li> + <li>Significant performance optimizations to reduce memory usage of the analyzer.</li> + <li>Tweaks to scan-build to have it work more easily with Xcode projects using Clang.</li> + <li>Numerous bug fixes to better support code using ARC.</li> +</ul> + <h4 id="checker_258">checker-258</h4> -<p><b>built:</b>October 13, 2011<br> -<b>download:</b> <a href="/checker/checker-258.tar.bz2">checker-258.tar.bz2</a></p> +<p><b>built: </b>October 13, 2011<br> <p><b>highlights:</b></p> <ul> @@ -30,8 +98,7 @@ <h4 id="checker_257">checker-257</h4> -<p><b>built:</b>May 25, 2011<br> -<b>download:</b> <a href="/checker/checker-257.tar.bz2">checker-257.tar.bz2</a></p> +<p><b>built: </b>May 25, 2011<br> <p><b>highlights:</b></p> <ul> @@ -43,8 +110,7 @@ <h4 id="checker_256">checker-256</h4> -<p><b>built:</b>April 13, 2011<br> -<b>download:</b> <a href="/checker/checker-256.tar.bz2">checker-256.tar.bz2</a></p> +<p><b>built: </b>April 13, 2011<br> <p><b>highlights:</b></p> <ul> @@ -93,8 +159,7 @@ $ find . | grep xcspec | grep Clang <h4 id="checker_255">checker-255</h4> -<p><b>built:</b> February 11, 2011<br> -<b>download:</b> <a href="/checker/checker-255.tar.bz2">checker-255.tar.bz2</a></p> +<p><b>built: </b> February 11, 2011<br> <p><b>highlights:</b></p> <ul> @@ -106,8 +171,7 @@ $ find . | grep xcspec | grep Clang <h4 id="checker_254">checker-254</h4> -<p><b>built:</b> January 27, 2011<br> -<b>download:</b> <a href="/checker/checker-254.tar.bz2">checker-254.tar.bz2</a></p> +<p><b>built: </b> January 27, 2011<br> <p><b>highlights:</b></p> <ul> |